Post by davidOSM » Sat Oct 28, 2017 12:34 am

With Google adding "Not Secure" warnings to chrome I decided to add an SSL certificate to my new site. "onestopmods.com" and decided to try the free one "Let's Encrypt". Unfortunately, redirecting through https is seriously corrupting the home page display.

Has anyone else come across this or managed to overcome it?

Dave

New member

Posts

Joined
Thu Aug 31, 2017 5:24 am

Post by straightlight » Sat Oct 28, 2017 7:00 am

Followed are specific troubleshooting steps and possible guidance on how to properly establish Let's Encrypt: https://stackoverflow.com/questions/353 ... -ssl-setup

Dedication and passion goes to those who are able to push and merge a project.

Regards,
Straightlight
Programmer / Opencart Tester


Legendary Member

Posts

Joined
Mon Nov 14, 2011 11:38 pm
Location - Canada, ON

Post by sims » Sat Oct 28, 2017 4:35 pm

Lots of resources are still loading via http

https://www.whynopadlock.com go here and eneter your site

New member

Posts

Joined
Fri Apr 21, 2017 11:49 pm

Post by davidOSM » Sat Oct 28, 2017 8:06 pm

Hi,

This is what I have been advised on the Let's Encypt forum

Your problem is a configuration issue, you must configure your OpenCart software so the urls constructed by this piece of software point to your https domain instead of http and your ip.

Can someone please explain or at least point me in the right direction?

I am using OC 3.02

New member

Posts

Joined
Thu Aug 31, 2017 5:24 am

Post by labeshops » Sat Oct 28, 2017 10:06 pm

Did you try changing all the http:// in your config files to https:// ??

Running Opencart v3.0.3.2 with multi-stores and the default template from https://www.labeshops.com which has links to all my stores.


User avatar
Expert Member

Posts

Joined
Thu Aug 04, 2011 4:41 am
Location - Florida, USA

Post by moneycarlo » Thu Nov 02, 2017 10:58 am

i've used LE on a couple of my sites with oc 2.3 and no problems. You still have to take the necessary steps to point everything in OC to https if you want the entire site secured. There's some posts or articles on how to do that.

Active Member

Posts

Joined
Wed Sep 28, 2011 3:40 am

Post by Dhaupin » Sat Nov 04, 2017 1:39 am

Nice working getting it running. I just checked out onestopmods.com and noticed a couple things:

The www version of your site doesnt redirect to the non-www, this causes duplicate content issues. Your LE certificate supports both modes which is good. The best place to enforce is at your server level (Apache/Nginx) so that it applies to all requests, even outside of Opencart.

With SSL:
- Opencart is still generating its links using http:// which causes an extra 301 redirect on all uncached requests through these places. This slows things down. Examples are your menus, footer, product lists, etc. So when a user or indexer hits your site, it sees the current page is https://, but tons of links point to http://.
- The same logic generating those links may be causing your product live options ajax to fail. They are requesting http:// and i have a hankering that the the dev may have used the same link library that needs repaired.
- Opencart will try to use http:// insecure images/media from the file manager. Use relative // or https:// for these to preserve "the green lock".

We made an ocmod that adds more features and fixes a bunch these SSL quirks in OC if youre interested: https://www.opencart.com/index.php?rout ... n_id=32053

https://creadev.org | support@creadev.org - Opencart Extensions, Integrations, & Development. Made in the USA.


User avatar
Active Member

Posts

Joined
Tue May 13, 2014 3:45 am
Location - PA
Who is online

Users browsing this forum: No registered users and 25 guests